import { type ZodType, z } from 'zod'; import { type Application, type Organization, type Role, type UserSsoIdentity } from '../../db-entries/index.js'; import { type MfaFactors } from '../../foundations/index.js'; import { InteractionEvent } from '../interactions.js'; import { GrantType } from '../oidc-config.js'; import { type ScopeResponse } from '../scope.js'; import { type UserInfo } from '../user.js'; import type { VerificationType } from '../verification-records/verification-type.js'; export declare const jwtCustomizerGuard: z.ZodObject<{ script: z.ZodString; environmentVariables: z.ZodOptional>; contextSample: z.ZodOptional>>; }, "strip", z.ZodTypeAny, { script: string; environmentVariables?: Record | undefined; contextSample?: Record | undefined; }, { script: string; environmentVariables?: Record | undefined; contextSample?: Record | undefined; }>; export declare enum LogtoJwtTokenKeyType { AccessToken = "access-token", ClientCredentials = "client-credentials" } export type JwtCustomizerUserContext = UserInfo & { hasPassword: boolean; ssoIdentities: Array>; mfaVerificationFactors: MfaFactors; roles: Array & { scopes: Array>; }>; organizations: Array>; organizationRoles: Array<{ organizationId: string; roleId: string; roleName: string; }>; }; export declare const jwtCustomizerUserContextGuard: z.ZodObject; id: ZodType; username: ZodType; primaryEmail: ZodType; primaryPhone: ZodType; passwordEncrypted: ZodType; passwordEncryptionMethod: ZodType; name: ZodType; avatar: ZodType; profile: ZodType; }>, z.ZodTypeDef, Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }>>; applicationId: ZodType; identities: ZodType | undefined; }>, z.ZodTypeDef, Record | undefined; }>>; customData: ZodType; logtoConfig: ZodType; mfaVerifications: ZodType<({ type: import("../../foundations/index.js").MfaFactor.TOTP; id: string; key: string; createdAt: string; lastUsedAt?: string | undefined; } | { type: import("../../foundations/index.js").MfaFactor.WebAuthn; id: string; createdAt: string; credentialId: string; publicKey: string; counter: number; agent: string; name?: string | undefined; lastUsedAt?: string | undefined; rpId?: string | undefined; transports?: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[] | undefined; } | { type: import("../../foundations/index.js").MfaFactor.BackupCode; id: string; createdAt: string; codes: { code: string; usedAt?: string | undefined; }[]; lastUsedAt?: string | undefined; })[], z.ZodTypeDef, ({ type: import("../../foundations/index.js").MfaFactor.TOTP; id: string; key: string; createdAt: string; lastUsedAt?: string | undefined; } | { type: import("../../foundations/index.js").MfaFactor.WebAuthn; id: string; createdAt: string; credentialId: string; publicKey: string; counter: number; agent: string; name?: string | undefined; lastUsedAt?: string | undefined; rpId?: string | undefined; transports?: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[] | undefined; } | { type: import("../../foundations/index.js").MfaFactor.BackupCode; id: string; createdAt: string; codes: { code: string; usedAt?: string | undefined; }[]; lastUsedAt?: string | undefined; })[]>; isSuspended: ZodType; lastSignInAt: ZodType; createdAt: ZodType; updatedAt: ZodType; }, "name" | "id" | "applicationId" | "username" | "createdAt" | "profile" | "avatar" | "customData" | "identities" | "updatedAt" | "lastSignInAt" | "primaryEmail" | "primaryPhone" | "isSuspended"> & { hasPassword: z.ZodBoolean; ssoIdentities: z.ZodArray; id: ZodType; userId: ZodType; issuer: ZodType; identityId: ZodType; detail: ZodType; createdAt: ZodType; updatedAt: ZodType; ssoConnectorId: ZodType; }, "issuer" | "identityId" | "detail">, "strip", z.ZodTypeAny, { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }, { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }>, "many">; mfaVerificationFactors: z.ZodArray, "many">; roles: z.ZodArray; id: ZodType; name: ZodType; description: ZodType; type: ZodType; isDefault: ZodType; }, "name" | "id" | "description"> & { scopes: z.ZodArray; id: ZodType; resourceId: ZodType; name: ZodType; description: ZodType; createdAt: ZodType; } & { resource: import("../../foundations/schemas.js").Guard; }, "name" | "id" | "description" | "resource" | "resourceId">, "strip", z.ZodTypeAny, { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }, { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }>, "many">; }, "strip", z.ZodTypeAny, { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }[]; }, { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }[]; }>, "many">; organizations: z.ZodArray; id: ZodType; name: ZodType; description: ZodType; customData: ZodType; isMfaRequired: ZodType; color: ZodType, z.ZodTypeDef, Partial<{ primaryColor: string; isDarkModeEnabled: boolean; darkPrimaryColor: string; }>>; branding: ZodType<{ logoUrl?: string | undefined; darkLogoUrl?: string | undefined; favicon?: string | undefined; darkFavicon?: string | undefined; }, z.ZodTypeDef, { logoUrl?: string | undefined; darkLogoUrl?: string | undefined; favicon?: string | undefined; darkFavicon?: string | undefined; }>; customCss: ZodType; createdAt: ZodType; }, "name" | "id" | "description">, "strip", z.ZodTypeAny, { name: string; id: string; description: string | null; }, { name: string; id: string; description: string | null; }>, "many">; organizationRoles: z.ZodArray, "many">; }, "strip", z.ZodTypeAny, { name: string | null; id: string; applicationId: string | null; username: string | null; createdAt: number; profile: import("../../foundations/index.js").UserProfile; avatar: string | null; customData: import("@withtyped/server/lib/types.js").JsonObject; identities: import("../../foundations/index.js").Identities; roles: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }[]; }[]; organizations: { name: string; id: string; description: string | null; }[]; updatedAt: number; lastSignInAt: number | null; primaryEmail: string | null; primaryPhone: string | null; isSuspended: boolean; hasPassword: boolean; ssoIdentities: { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }[]; mfaVerificationFactors: import("../../foundations/index.js").MfaFactor[]; organizationRoles: { organizationId: string; roleId: string; roleName: string; }[]; }, { name: string | null; id: string; applicationId: string | null; username: string | null; createdAt: number; profile: import("../../foundations/index.js").UserProfile; avatar: string | null; customData: import("@withtyped/server/lib/types.js").JsonObject; identities: import("../../foundations/index.js").Identities; roles: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }[]; }[]; organizations: { name: string; id: string; description: string | null; }[]; updatedAt: number; lastSignInAt: number | null; primaryEmail: string | null; primaryPhone: string | null; isSuspended: boolean; hasPassword: boolean; ssoIdentities: { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }[]; mfaVerificationFactors: import("../../foundations/index.js").MfaFactor[]; organizationRoles: { organizationId: string; roleId: string; roleName: string; }[]; }>; export declare const jwtCustomizerGrantContextGuard: z.ZodObject<{ type: z.ZodLiteral; subjectTokenContext: z.ZodRecord>; }, "strip", z.ZodTypeAny, { type: GrantType.TokenExchange; subjectTokenContext: Record; }, { type: GrantType.TokenExchange; subjectTokenContext: Record; }>; export type JwtCustomizerGrantContext = z.infer; export declare const jwtCustomizerUserInteractionContextGuard: z.ZodObject<{ interactionEvent: z.ZodNativeEnum; userId: z.ZodString; verificationRecords: z.ZodArray; identifier: z.ZodObject<{ type: z.ZodUnion<[z.ZodNativeEnum, z.ZodNativeEnum]>; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }>; verified: z.ZodBoolean; }, "strip", z.ZodTypeAny, { type: VerificationType.Password; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }; verified: boolean; }, { type: VerificationType.Password; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }; verified: boolean; }>, z.ZodObject<{ id: z.ZodString; templateType: z.ZodNativeEnum; verified: z.ZodBoolean; } & { type: z.ZodLiteral; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }>; }, "strip", z.ZodTypeAny, { type: VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }, { type: VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }>, z.ZodObject<{ id: z.ZodString; templateType: z.ZodNativeEnum; verified: z.ZodBoolean; } & { type: z.ZodLiteral; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }>; }, "strip", z.ZodTypeAny, { type: VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }, { type: VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }>, z.ZodObject<{ id: z.ZodString; templateType: z.ZodNativeEnum; verified: z.ZodBoolean; } & { type: z.ZodLiteral; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }>; }, "strip", z.ZodTypeAny, { type: VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }, { type: VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }>, z.ZodObject<{ id: z.ZodString; templateType: z.ZodNativeEnum; verified: z.ZodBoolean; } & { type: z.ZodLiteral; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }>; }, "strip", z.ZodTypeAny, { type: VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }, { type: VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }>, z.ZodObject; socialUserInfo: z.ZodOptional; phone: z.ZodOptional; name: z.ZodOptional; avatar: z.ZodOptional; rawData: z.ZodOptional>; }, "strip", z.ZodTypeAny, { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; }, { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; }>>; encryptedTokenSet: z.ZodOptional; expiresAt: z.ZodOptional; tokenType: z.ZodOptional; hasRefreshToken: z.ZodBoolean; }, "strip", z.ZodTypeAny, { hasRefreshToken: boolean; scope?: string | undefined; expiresAt?: number | undefined; tokenType?: string | undefined; }, { hasRefreshToken: boolean; scope?: string | undefined; expiresAt?: number | undefined; tokenType?: string | undefined; }>; }, "strip", z.ZodTypeAny, { metadata: { hasRefreshToken: boolean; scope?: string | undefined; expiresAt?: number | undefined; tokenType?: string | undefined; }; encryptedTokenSetBase64: string; }, { metadata: { hasRefreshToken: boolean; scope?: string | undefined; expiresAt?: number | undefined; tokenType?: string | undefined; }; encryptedTokenSetBase64: string; }>>; connectorSession: z.ZodOptional; redirectUri: z.ZodOptional; connectorId: z.ZodOptional; connectorFactoryId: z.ZodOptional; jti: z.ZodOptional; state: z.ZodOptional; }, "strip", z.ZodUnknown, z.objectOutputType<{ nonce: z.ZodOptional; redirectUri: z.ZodOptional; connectorId: z.ZodOptional; connectorFactoryId: z.ZodOptional; jti: z.ZodOptional; state: z.ZodOptional; }, z.ZodUnknown, "strip">, z.objectInputType<{ nonce: z.ZodOptional; redirectUri: z.ZodOptional; connectorId: z.ZodOptional; connectorFactoryId: z.ZodOptional; jti: z.ZodOptional; state: z.ZodOptional; }, z.ZodUnknown, "strip">>>; }, "encryptedTokenSet" | "connectorSession">, "strip", z.ZodTypeAny, { type: VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; }, { type: VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; }>, z.ZodObject<{ type: z.ZodLiteral; id: z.ZodString; issuer: z.ZodOptional; connectorId: z.ZodString; } & { enterpriseSsoUserInfo: z.ZodOptional; phone: z.ZodOptional; name: z.ZodOptional; avatar: z.ZodOptional; rawData: z.ZodOptional>; }, "strip", ZodType, { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; }, { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; }>>; }, "strip", z.ZodTypeAny, { type: VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; }, { type: VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; }>, z.ZodObject; userId: z.ZodString; secret: z.ZodOptional; verified: z.ZodBoolean; }, "secret">, "strip", z.ZodTypeAny, { type: VerificationType.TOTP; id: string; userId: string; verified: boolean; }, { type: VerificationType.TOTP; id: string; userId: string; verified: boolean; }>, z.ZodObject; userId: z.ZodString; code: z.ZodOptional; backupCodes: z.ZodOptional>; }, "backupCodes">, "strip", z.ZodTypeAny, { type: VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; }, { type: VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; }>, z.ZodObject; registrationRpId: z.ZodOptional; authenticationChallenge: z.ZodOptional; registrationInfo: z.ZodOptional; rpId: z.ZodString; credentialId: z.ZodString; publicKey: z.ZodString; transports: z.ZodArray, "many">; counter: z.ZodNumber; agent: z.ZodString; name: z.ZodOptional; }, "strip", z.ZodTypeAny, { type: import("../../foundations/index.js").MfaFactor.WebAuthn; rpId: string; credentialId: string; publicKey: string; transports: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[]; counter: number; agent: string; name?: string | undefined; }, { type: import("../../foundations/index.js").MfaFactor.WebAuthn; rpId: string; credentialId: string; publicKey: string; transports: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[]; counter: number; agent: string; name?: string | undefined; }>>; } & { type: z.ZodLiteral; userId: z.ZodString; }, "registrationChallenge" | "authenticationChallenge" | "registrationInfo">, "strip", z.ZodTypeAny, { type: VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; }, { type: VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; }>, z.ZodObject; registrationRpId: z.ZodOptional; authenticationChallenge: z.ZodOptional; registrationInfo: z.ZodOptional; rpId: z.ZodString; credentialId: z.ZodString; publicKey: z.ZodString; transports: z.ZodArray, "many">; counter: z.ZodNumber; agent: z.ZodString; name: z.ZodOptional; }, "strip", z.ZodTypeAny, { type: import("../../foundations/index.js").MfaFactor.WebAuthn; rpId: string; credentialId: string; publicKey: string; transports: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[]; counter: number; agent: string; name?: string | undefined; }, { type: import("../../foundations/index.js").MfaFactor.WebAuthn; rpId: string; credentialId: string; publicKey: string; transports: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[]; counter: number; agent: string; name?: string | undefined; }>>; } & { type: z.ZodLiteral; userId: z.ZodOptional; authenticationRpId: z.ZodOptional; }, "registrationChallenge" | "authenticationChallenge" | "registrationInfo" | "authenticationRpId">, "strip", z.ZodTypeAny, { type: VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; }, { type: VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; }>, z.ZodObject<{ id: z.ZodString; type: z.ZodLiteral; verified: z.ZodBoolean; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }>; oneTimeTokenContext: z.ZodOptional>; }, "strip", z.ZodTypeAny, { jitOrganizationIds?: string[] | undefined; }, { jitOrganizationIds?: string[] | undefined; }>>; }, "strip", z.ZodTypeAny, { type: VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; }, { type: VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; }>, z.ZodObject; identifier: z.ZodObject<{ type: z.ZodNativeEnum; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier; }>; passwordEncrypted: z.ZodOptional; passwordEncryptionMethod: z.ZodOptional>; }, "passwordEncrypted" | "passwordEncryptionMethod">, "strip", z.ZodTypeAny, { type: VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier; }; }, { type: VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier; }; }>]>, "many">; signInContext: z.ZodOptional>; }, "strip", z.ZodTypeAny, { userId: string; interactionEvent: InteractionEvent; verificationRecords: ({ type: VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier; }; } | { type: VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: VerificationType.Password; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }; verified: boolean; } | { type: VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[]; signInContext?: Record | undefined; }, { userId: string; interactionEvent: InteractionEvent; verificationRecords: ({ type: VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier; }; } | { type: VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: VerificationType.Password; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }; verified: boolean; } | { type: VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[]; signInContext?: Record | undefined; }>; export type JwtCustomizerUserInteractionContext = z.infer; export type JwtCustomizerApplicationContext = Omit; export declare const jwtCustomizerApplicationContextGuard: z.ZodObject; id: ZodType; name: ZodType; secret: ZodType; description: ZodType; type: ZodType; oidcClientMetadata: ZodType; customClientMetadata: ZodType<{ corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; }, z.ZodTypeDef, { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; }>; protectedAppMetadata: ZodType<{ host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null, z.ZodTypeDef, { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null>; customData: ZodType; isThirdParty: ZodType; createdAt: ZodType; }, "secret">, "strip", z.ZodTypeAny, { type: import("../../db-entries/custom-types.js").ApplicationType; name: string; id: string; tenantId: string; createdAt: number; customData: import("@withtyped/server/lib/types.js").JsonObject; description: string | null; oidcClientMetadata: import("../../foundations/index.js").OidcClientMetadata; customClientMetadata: import("../../foundations/index.js").CustomClientMetadata; protectedAppMetadata: import("../../foundations/index.js").ProtectedAppMetadata | null; isThirdParty: boolean; }, { type: import("../../db-entries/custom-types.js").ApplicationType; name: string; id: string; tenantId: string; createdAt: number; customData: import("@withtyped/server/lib/types.js").JsonObject; description: string | null; oidcClientMetadata: import("../../foundations/index.js").OidcClientMetadata; customClientMetadata: import("../../foundations/index.js").CustomClientMetadata; protectedAppMetadata: import("../../foundations/index.js").ProtectedAppMetadata | null; isThirdParty: boolean; }>; export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{ script: z.ZodString; environmentVariables: z.ZodOptional>; } & { tokenSample: z.ZodOptional; expiresWithSession: z.ZodOptional>; grantId: z.ZodOptional; gty: z.ZodOptional; sessionUid: z.ZodOptional>; sid: z.ZodOptional>; kind: z.ZodOptional>; jti: z.ZodOptional; aud: z.ZodOptional]>>; scope: z.ZodOptional>; clientId: z.ZodOptional>; }, "strict", z.ZodTypeAny, { grantId?: string | undefined; sid?: string | undefined; jti?: string | undefined; kind?: "AccessToken" | undefined; accountId?: string | undefined; scope?: string | undefined; sessionUid?: string | undefined; clientId?: string | undefined; expiresWithSession?: boolean | undefined; gty?: string | undefined; aud?: string | string[] | undefined; }, { grantId?: string | undefined; sid?: string | undefined; jti?: string | undefined; kind?: "AccessToken" | undefined; accountId?: string | undefined; scope?: string | undefined; sessionUid?: string | undefined; clientId?: string | undefined; expiresWithSession?: boolean | undefined; gty?: string | undefined; aud?: string | string[] | undefined; }>>; contextSample: z.ZodOptional>; id: z.ZodOptional>; applicationId: z.ZodOptional>; username: z.ZodOptional>; createdAt: z.ZodOptional>; profile: z.ZodOptional; }>, z.ZodTypeDef, Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }>>>; avatar: z.ZodOptional>; customData: z.ZodOptional>; identities: z.ZodOptional | undefined; }>, z.ZodTypeDef, Record | undefined; }>>>; updatedAt: z.ZodOptional>; lastSignInAt: z.ZodOptional>; primaryEmail: z.ZodOptional>; primaryPhone: z.ZodOptional>; isSuspended: z.ZodOptional>; hasPassword: z.ZodOptional; ssoIdentities: z.ZodOptional; id: ZodType; userId: ZodType; issuer: ZodType; identityId: ZodType; detail: ZodType; createdAt: ZodType; updatedAt: ZodType; ssoConnectorId: ZodType; }, "issuer" | "identityId" | "detail">, "strip", z.ZodTypeAny, { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }, { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }>, "many">>; mfaVerificationFactors: z.ZodOptional, "many">>; roles: z.ZodOptional; id: ZodType; name: ZodType; description: ZodType; type: ZodType; isDefault: ZodType; }, "name" | "id" | "description"> & { scopes: z.ZodArray; id: ZodType; resourceId: ZodType; name: ZodType; description: ZodType; createdAt: ZodType; } & { resource: import("../../foundations/schemas.js").Guard; }, "name" | "id" | "description" | "resource" | "resourceId">, "strip", z.ZodTypeAny, { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }, { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }>, "many">; }, "strip", z.ZodTypeAny, { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }[]; }, { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }[]; }>, "many">>; organizations: z.ZodOptional; id: ZodType; name: ZodType; description: ZodType; customData: ZodType; isMfaRequired: ZodType; color: ZodType, z.ZodTypeDef, Partial<{ primaryColor: string; isDarkModeEnabled: boolean; darkPrimaryColor: string; }>>; branding: ZodType<{ logoUrl?: string | undefined; darkLogoUrl?: string | undefined; favicon?: string | undefined; darkFavicon?: string | undefined; }, z.ZodTypeDef, { logoUrl?: string | undefined; darkLogoUrl?: string | undefined; favicon?: string | undefined; darkFavicon?: string | undefined; }>; customCss: ZodType; createdAt: ZodType; }, "name" | "id" | "description">, "strip", z.ZodTypeAny, { name: string; id: string; description: string | null; }, { name: string; id: string; description: string | null; }>, "many">>; organizationRoles: z.ZodOptional, "many">>; }, "strip", z.ZodTypeAny, { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../foundations/index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }, { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../foundations/index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }>; grant: z.ZodOptional>; subjectTokenContext: z.ZodOptional>>; }, "strip", z.ZodTypeAny, { type?: GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; }, { type?: GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; }>>; interaction: z.ZodOptional>; userId: z.ZodOptional; verificationRecords: z.ZodOptional; identifier: z.ZodObject<{ type: z.ZodUnion<[z.ZodNativeEnum, z.ZodNativeEnum]>; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }>; verified: z.ZodBoolean; }, "strip", z.ZodTypeAny, { type: VerificationType.Password; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }; verified: boolean; }, { type: VerificationType.Password; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }; verified: boolean; }>, z.ZodObject<{ id: z.ZodString; templateType: z.ZodNativeEnum; verified: z.ZodBoolean; } & { type: z.ZodLiteral; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }>; }, "strip", z.ZodTypeAny, { type: VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }, { type: VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }>, z.ZodObject<{ id: z.ZodString; templateType: z.ZodNativeEnum; verified: z.ZodBoolean; } & { type: z.ZodLiteral; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }>; }, "strip", z.ZodTypeAny, { type: VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }, { type: VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }>, z.ZodObject<{ id: z.ZodString; templateType: z.ZodNativeEnum; verified: z.ZodBoolean; } & { type: z.ZodLiteral; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }>; }, "strip", z.ZodTypeAny, { type: VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }, { type: VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }>, z.ZodObject<{ id: z.ZodString; templateType: z.ZodNativeEnum; verified: z.ZodBoolean; } & { type: z.ZodLiteral; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }>; }, "strip", z.ZodTypeAny, { type: VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }, { type: VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }>, z.ZodObject; socialUserInfo: z.ZodOptional; phone: z.ZodOptional; name: z.ZodOptional; avatar: z.ZodOptional; rawData: z.ZodOptional>; }, "strip", z.ZodTypeAny, { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; }, { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; }>>; encryptedTokenSet: z.ZodOptional; expiresAt: z.ZodOptional; tokenType: z.ZodOptional; hasRefreshToken: z.ZodBoolean; }, "strip", z.ZodTypeAny, { hasRefreshToken: boolean; scope?: string | undefined; expiresAt?: number | undefined; tokenType?: string | undefined; }, { hasRefreshToken: boolean; scope?: string | undefined; expiresAt?: number | undefined; tokenType?: string | undefined; }>; }, "strip", z.ZodTypeAny, { metadata: { hasRefreshToken: boolean; scope?: string | undefined; expiresAt?: number | undefined; tokenType?: string | undefined; }; encryptedTokenSetBase64: string; }, { metadata: { hasRefreshToken: boolean; scope?: string | undefined; expiresAt?: number | undefined; tokenType?: string | undefined; }; encryptedTokenSetBase64: string; }>>; connectorSession: z.ZodOptional; redirectUri: z.ZodOptional; connectorId: z.ZodOptional; connectorFactoryId: z.ZodOptional; jti: z.ZodOptional; state: z.ZodOptional; }, "strip", z.ZodUnknown, z.objectOutputType<{ nonce: z.ZodOptional; redirectUri: z.ZodOptional; connectorId: z.ZodOptional; connectorFactoryId: z.ZodOptional; jti: z.ZodOptional; state: z.ZodOptional; }, z.ZodUnknown, "strip">, z.objectInputType<{ nonce: z.ZodOptional; redirectUri: z.ZodOptional; connectorId: z.ZodOptional; connectorFactoryId: z.ZodOptional; jti: z.ZodOptional; state: z.ZodOptional; }, z.ZodUnknown, "strip">>>; }, "encryptedTokenSet" | "connectorSession">, "strip", z.ZodTypeAny, { type: VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; }, { type: VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; }>, z.ZodObject<{ type: z.ZodLiteral; id: z.ZodString; issuer: z.ZodOptional; connectorId: z.ZodString; } & { enterpriseSsoUserInfo: z.ZodOptional; phone: z.ZodOptional; name: z.ZodOptional; avatar: z.ZodOptional; rawData: z.ZodOptional>; }, "strip", ZodType, { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; }, { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; }>>; }, "strip", z.ZodTypeAny, { type: VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; }, { type: VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; }>, z.ZodObject; userId: z.ZodString; secret: z.ZodOptional; verified: z.ZodBoolean; }, "secret">, "strip", z.ZodTypeAny, { type: VerificationType.TOTP; id: string; userId: string; verified: boolean; }, { type: VerificationType.TOTP; id: string; userId: string; verified: boolean; }>, z.ZodObject; userId: z.ZodString; code: z.ZodOptional; backupCodes: z.ZodOptional>; }, "backupCodes">, "strip", z.ZodTypeAny, { type: VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; }, { type: VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; }>, z.ZodObject; registrationRpId: z.ZodOptional; authenticationChallenge: z.ZodOptional; registrationInfo: z.ZodOptional; rpId: z.ZodString; credentialId: z.ZodString; publicKey: z.ZodString; transports: z.ZodArray, "many">; counter: z.ZodNumber; agent: z.ZodString; name: z.ZodOptional; }, "strip", z.ZodTypeAny, { type: import("../../foundations/index.js").MfaFactor.WebAuthn; rpId: string; credentialId: string; publicKey: string; transports: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[]; counter: number; agent: string; name?: string | undefined; }, { type: import("../../foundations/index.js").MfaFactor.WebAuthn; rpId: string; credentialId: string; publicKey: string; transports: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[]; counter: number; agent: string; name?: string | undefined; }>>; } & { type: z.ZodLiteral; userId: z.ZodString; }, "registrationChallenge" | "authenticationChallenge" | "registrationInfo">, "strip", z.ZodTypeAny, { type: VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; }, { type: VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; }>, z.ZodObject; registrationRpId: z.ZodOptional; authenticationChallenge: z.ZodOptional; registrationInfo: z.ZodOptional; rpId: z.ZodString; credentialId: z.ZodString; publicKey: z.ZodString; transports: z.ZodArray, "many">; counter: z.ZodNumber; agent: z.ZodString; name: z.ZodOptional; }, "strip", z.ZodTypeAny, { type: import("../../foundations/index.js").MfaFactor.WebAuthn; rpId: string; credentialId: string; publicKey: string; transports: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[]; counter: number; agent: string; name?: string | undefined; }, { type: import("../../foundations/index.js").MfaFactor.WebAuthn; rpId: string; credentialId: string; publicKey: string; transports: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[]; counter: number; agent: string; name?: string | undefined; }>>; } & { type: z.ZodLiteral; userId: z.ZodOptional; authenticationRpId: z.ZodOptional; }, "registrationChallenge" | "authenticationChallenge" | "registrationInfo" | "authenticationRpId">, "strip", z.ZodTypeAny, { type: VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; }, { type: VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; }>, z.ZodObject<{ id: z.ZodString; type: z.ZodLiteral; verified: z.ZodBoolean; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }>; oneTimeTokenContext: z.ZodOptional>; }, "strip", z.ZodTypeAny, { jitOrganizationIds?: string[] | undefined; }, { jitOrganizationIds?: string[] | undefined; }>>; }, "strip", z.ZodTypeAny, { type: VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; }, { type: VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; }>, z.ZodObject; identifier: z.ZodObject<{ type: z.ZodNativeEnum; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../foundations/index.js").SignInIdentifier; }, { value: string; type: import("../../foundations/index.js").SignInIdentifier; }>; passwordEncrypted: z.ZodOptional; passwordEncryptionMethod: z.ZodOptional>; }, "passwordEncrypted" | "passwordEncryptionMethod">, "strip", z.ZodTypeAny, { type: VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier; }; }, { type: VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier; }; }>]>, "many">>; signInContext: z.ZodOptional>>; }, "strip", z.ZodTypeAny, { userId?: string | undefined; interactionEvent?: InteractionEvent | undefined; verificationRecords?: ({ type: VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier; }; } | { type: VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: VerificationType.Password; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }; verified: boolean; } | { type: VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; }, { userId?: string | undefined; interactionEvent?: InteractionEvent | undefined; verificationRecords?: ({ type: VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier; }; } | { type: VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: VerificationType.Password; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }; verified: boolean; } | { type: VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; }>>; application: z.ZodOptional>; name: z.ZodOptional>; id: z.ZodOptional>; tenantId: z.ZodOptional>; createdAt: z.ZodOptional>; customData: z.ZodOptional>; description: z.ZodOptional>; oidcClientMetadata: z.ZodOptional>; customClientMetadata: z.ZodOptional>; protectedAppMetadata: z.ZodOptional>; isThirdParty: z.ZodOptional>; }, "strip", z.ZodTypeAny, { type?: import("../../db-entries/custom-types.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../foundations/index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; }, { type?: import("../../db-entries/custom-types.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../foundations/index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; }>>; }, "strip", z.ZodTypeAny, { user: { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../foundations/index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }; application?: { type?: import("../../db-entries/custom-types.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../foundations/index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; grant?: { type?: GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; } | undefined; interaction?: { userId?: string | undefined; interactionEvent?: InteractionEvent | undefined; verificationRecords?: ({ type: VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier; }; } | { type: VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: VerificationType.Password; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }; verified: boolean; } | { type: VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; } | undefined; }, { user: { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../foundations/index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }; application?: { type?: import("../../db-entries/custom-types.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../foundations/index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; grant?: { type?: GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; } | undefined; interaction?: { userId?: string | undefined; interactionEvent?: InteractionEvent | undefined; verificationRecords?: ({ type: VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier; }; } | { type: VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: VerificationType.Password; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }; verified: boolean; } | { type: VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; } | undefined; }>>; }, "strict", z.ZodTypeAny, { script: string; environmentVariables?: Record | undefined; contextSample?: { user: { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../foundations/index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }; application?: { type?: import("../../db-entries/custom-types.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../foundations/index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; grant?: { type?: GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; } | undefined; interaction?: { userId?: string | undefined; interactionEvent?: InteractionEvent | undefined; verificationRecords?: ({ type: VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier; }; } | { type: VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: VerificationType.Password; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }; verified: boolean; } | { type: VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; } | undefined; } | undefined; tokenSample?: { grantId?: string | undefined; sid?: string | undefined; jti?: string | undefined; kind?: "AccessToken" | undefined; accountId?: string | undefined; scope?: string | undefined; sessionUid?: string | undefined; clientId?: string | undefined; expiresWithSession?: boolean | undefined; gty?: string | undefined; aud?: string | string[] | undefined; } | undefined; }, { script: string; environmentVariables?: Record | undefined; contextSample?: { user: { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../db-entries/resource.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../foundations/index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }; application?: { type?: import("../../db-entries/custom-types.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../foundations/index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; grant?: { type?: GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; } | undefined; interaction?: { userId?: string | undefined; interactionEvent?: InteractionEvent | undefined; verificationRecords?: ({ type: VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier; }; } | { type: VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: VerificationType.Password; id: string; identifier: { value: string; type: import("../../foundations/index.js").SignInIdentifier | import("../../foundations/index.js").AdditionalIdentifier; }; verified: boolean; } | { type: VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server/lib/types.js").Json | undefined; } | undefined; } | { type: VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; } | undefined; } | undefined; tokenSample?: { grantId?: string | undefined; sid?: string | undefined; jti?: string | undefined; kind?: "AccessToken" | undefined; accountId?: string | undefined; scope?: string | undefined; sessionUid?: string | undefined; clientId?: string | undefined; expiresWithSession?: boolean | undefined; gty?: string | undefined; aud?: string | string[] | undefined; } | undefined; }>; export type AccessTokenJwtCustomizer = z.infer; export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{ script: z.ZodString; environmentVariables: z.ZodOptional>; } & { tokenSample: z.ZodOptional>; jti: z.ZodOptional; aud: z.ZodOptional]>>; scope: z.ZodOptional>; clientId: z.ZodOptional>; }, "strict", z.ZodTypeAny, { jti?: string | undefined; kind?: "ClientCredentials" | undefined; scope?: string | undefined; clientId?: string | undefined; aud?: string | string[] | undefined; }, { jti?: string | undefined; kind?: "ClientCredentials" | undefined; scope?: string | undefined; clientId?: string | undefined; aud?: string | string[] | undefined; }>>; contextSample: z.ZodOptional>; name: z.ZodOptional>; id: z.ZodOptional>; tenantId: z.ZodOptional>; createdAt: z.ZodOptional>; customData: z.ZodOptional>; description: z.ZodOptional>; oidcClientMetadata: z.ZodOptional>; customClientMetadata: z.ZodOptional>; protectedAppMetadata: z.ZodOptional>; isThirdParty: z.ZodOptional>; }, "strip", z.ZodTypeAny, { type?: import("../../db-entries/custom-types.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../foundations/index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; }, { type?: import("../../db-entries/custom-types.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../foundations/index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; }>>; }, "strip", z.ZodTypeAny, { application?: { type?: import("../../db-entries/custom-types.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../foundations/index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; }, { application?: { type?: import("../../db-entries/custom-types.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../foundations/index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; }>>; }, "strict", z.ZodTypeAny, { script: string; environmentVariables?: Record | undefined; contextSample?: { application?: { type?: import("../../db-entries/custom-types.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../foundations/index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; } | undefined; tokenSample?: { jti?: string | undefined; kind?: "ClientCredentials" | undefined; scope?: string | undefined; clientId?: string | undefined; aud?: string | string[] | undefined; } | undefined; }, { script: string; environmentVariables?: Record | undefined; contextSample?: { application?: { type?: import("../../db-entries/custom-types.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server/lib/types.js").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../foundations/index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../foundations/index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; } | undefined; tokenSample?: { jti?: string | undefined; kind?: "ClientCredentials" | undefined; scope?: string | undefined; clientId?: string | undefined; aud?: string | string[] | undefined; } | undefined; }>; export type ClientCredentialsJwtCustomizer = z.infer; /** * This guard is for the core JWT customizer testing API request body guard. * Unlike the DB guard * * - rename the `tokenSample` to `token` and is required for testing. * - rename the `contextSample` to `context` and is required for AccessToken testing. */ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<"tokenType", [z.ZodObject<{ token: z.ZodObject<{ accountId: z.ZodOptional; expiresWithSession: z.ZodOptional>; grantId: z.ZodOptional; gty: z.ZodOptional; sessionUid: z.ZodOptional>; sid: z.ZodOptional>; kind: z.ZodOptional>; jti: z.ZodOptional; aud: z.ZodOptional]>>; scope: z.ZodOptional>; clientId: z.ZodOptional>; }, "strict", z.ZodTypeAny, { grantId?: string | undefined; sid?: string | undefined; jti?: string | undefined; kind?: "AccessToken" | undefined; accountId?: string | undefined; scope?: string | undefined; sessionUid?: string | undefined; clientId?: string | undefined; expiresWithSession?: boolean | undefined; gty?: string | undefined; aud?: string | string[] | undefined; }, { grantId?: string | undefined; sid?: string | undefined; jti?: string | undefined; kind?: "AccessToken" | undefined; accountId?: string | undefined; scope?: string | undefined; sessionUid?: string | undefined; clientId?: string | undefined; expiresWithSession?: boolean | undefined; gty?: string | undefined; aud?: string | string[] | undefined; }>; context: z.ZodObject<{ user: z.ZodObject<{ name: z.ZodOptional>; id: z.ZodOptional>; applicationId: z.ZodOptional>; username: z.ZodOptional>; createdAt: z.ZodOptional>; profile: z.ZodOptional; }>, z.ZodTypeDef, Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }>>>; avatar: z.ZodOptional>; customData: z.ZodOptional>; identities: z.ZodOptional | undefined; }>, z.ZodTypeDef, Record | undefined; }>>>; updatedAt: z.ZodOptional>; lastSignInAt: z.ZodOptional>; primaryEmail: z.ZodOptional>; primaryPhone: z.ZodOptional>; isSuspended: z.ZodOptional>; hasPassword: z.ZodOptional; ssoIdentities: z.ZodOptional; id: ZodType; userId: ZodType; issuer: ZodType; identityId: ZodType; detail: ZodType; createdAt: ZodType; updatedAt: ZodType; ssoConnectorId: ZodType; }, "issuer" | "identityId" | "detail">, "strip", z.ZodTypeAny, { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }, { issuer: string; identityId: string; detail: import("@withtyped/server/lib/types.js").JsonObject; }>, "many">>; mfaVerificationFactors: z.ZodOptional, "many">>; roles: z.ZodOptional; id: ZodType; name: ZodType; description: ZodType; type: ZodType; isDefault: ZodType; }, "name" | "id" | "description"> & { scopes: z.ZodArray